Security
Playing with fire: millions of .git folders exposed to public
Nearly two million .git folders containing vital project information are exposed to the public, the Cybernews research team found.
Read more about Playing with fire: millions of .git folders exposed to public
TikTok's top hacker enjoys account takeovers
Yusuf, a 23-year-old bug bounty hunter from Kurdistan, Iraq, is one of TikTok's top contributors. Hacking big tech companies started as a hobby, Yusuf told Cybernews.
Read more about TikTok's top hacker enjoys account takeovers
Curb your access privileges, Microsoft tells system admins
Microsoft’s recent security update might be good news for the computer industry, but some system administrators might be reluctant to enable it – as it entails curtailing their unlimited access privileges.
Read more about Curb your access privileges, Microsoft tells system admins
Retailer hit with ransomware after leaving customer data exposed
Online retailer Esquimal leaked the data of thousands of users via an open server. Threat actors apparently noticed this and hit the company with ransomware.
Read more about Retailer hit with ransomware after leaving customer data exposed
Hackable factory robots could injure workers, warns cyber expert
A low-skilled hacker could be just five easy steps away from remotely controlling heavy industry machines, putting workers at risk of injury or worse – that’s the verdict from one cybersecurity firm.
Read more about Hackable factory robots could injure workers, warns cyber expert
Harvard Business Publishing licensee hit by ransomware
Threat actors got to a database with over 152,000 customer records before its owner, the Turkish branch of Harvard Business Review, closed it. Crooks left a ransom note, threatening to leak the data and inform authorities of the EU’s General Data Protection Regulation (GDPR) violations.
Read more about Harvard Business Publishing licensee hit by ransomware
Protecting infrastructure: it’s impossible to stay alert all the time – interview
Unlike computers, humans grow tired of being “always alerted” – even in the face of the gravest of dangers.
Read more about Protecting infrastructure: it’s impossible to stay alert all the time – interview
Ransomware as a self-sustaining industry in criminal underworld
Ransomware affected 12 million employees and cost companies over $4 trillion dollars in six months of 2020 alone, a survey by Nordlocker finds.
Read more about Ransomware as a self-sustaining industry in criminal underworld
US streaming platform leaks admin credentials and source code
CarbonTV, a US-based streaming service, left a server with its source code open, risking user safety and the company’s reputation.
Read more about US streaming platform leaks admin credentials and source code
Cyberwar against Russia is creating a risky legal precedent, says expert
While hitting Russia with cyberattacks helps ease the pressures Moscow has put on Ukraine, what will happen if hackers use the cyberwar as a pretext to focus on another, unrelated, target?
Read more about Cyberwar against Russia is creating a risky legal precedent, says expert
Procurement as an unguarded attack surface
With cyberattacks such as SolarWinds receiving so much publicity, the threat vector in the procurement and contracting sector has become well documented.
Read more about Procurement as an unguarded attack surface
Deepfakes could facilitate real estate fraud, experts warn
Algorithms capable of creating hyper-realistic images have been available for several years. Now, AI-powered image generators are also easily accessible to all. Experts warn that it is only a matter of time before the technology is used to commit real estate fraud.
Read more about Deepfakes could facilitate real estate fraud, experts warn
“This was embarrassing.” Hackers lured an experienced employee into a vicious trap
“I felt the hair stand up on the back of my neck,” a longtime warehouse employee told Cybernews. Falling for a fake email, he put all of the company in jeopardy and decided to share his story to prevent others from walking into the same trap.
Read more about “This was embarrassing.” Hackers lured an experienced employee into a vicious trap
Extortion gangs no longer avoid hitting Russian firms
Moscow’s military escapades in Ukraine have affected more than Europe’s geopolitical landscape. Russia’s invasion changed how threat actors conduct their day-to-day business.
Read more about Extortion gangs no longer avoid hitting Russian firms
Robson Rodrigues Prado, Tripletech: “before doing something it is better to look around; why reinvent the wheel?"
To really stand out from the crowd, enterprises must always be relevant and visionary. Analyzing the market, hot industry trends,...
Read more about Robson Rodrigues Prado, Tripletech: “before doing something it is better to look around; why reinvent the wheel?"
Navigating the cloud: 75% firms struggle with securing cloud environments
Almost 50% of companies believe that overlooking cloud security will lead to increased vulnerability and delayed response to breaches, according to a new Forrester report.
Read more about Navigating the cloud: 75% firms struggle with securing cloud environments
Ram Iyengar, Cloud Foundry: “laying a good foundational architecture for your web applications is great, but at what cost?”
By presenting intricate hardware and software services in various domains, cloud computing has been proving itself as a revolutionary model...
Read more about Ram Iyengar, Cloud Foundry: “laying a good foundational architecture for your web applications is great, but at what cost?”
Tatiana Krupenya, DBeaver: “the security issue concerns not only data but also processes in the company”
A legitimate system that permits staff to easily accomplish data-related tasks is critical to the success of any enterprise. With...
Read more about Tatiana Krupenya, DBeaver: “the security issue concerns not only data but also processes in the company”
Thousands of Android apps leak hard-coded secrets, research shows
Over half of the 30,000 investigated Android Apps are leaking secrets that could have huge repercussions for both app developers and their customers.
Read more about Thousands of Android apps leak hard-coded secrets, research shows
Michael Yuan, Second State: “The default should be zero trust”
Whether constructing a new cloud-native app or updating an existing one, developers should keep to an even set of principles....
Read more about Michael Yuan, Second State: “The default should be zero trust”
